Nmap Development mailing list archives
New VA Modules: NSE: 1, OpenVAS: 14, MSF: 2, Nessus: 1
From: New VA Module Alert Service <postmaster () insecure org>
Date: Mon, 4 Oct 2010 10:01:31 -0700 (PDT)
This report describes any new scripts/modules/exploits added to Nmap, OpenVAS, Metasploit, and Nessus since yesterday. == Nmap Scripting Engine scripts (1) == r20487 smb-flood.nse http://nmap.org/nsedoc/scripts/smb-flood.nse Exhaust the limit of SMB connections on a remote server by opening as many as we can. Most implementations of SMB have a hard global limit of 11 connections for user accounts and 10 connections for anonymous. Once that limit is exhausted, further connections are denied. This exploits that limit by taking up all the connections and holding them. == OpenVAS plugins (14) == r9137 100837 gb_particle_wiki_18273.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_particle_wiki_18273.nasl?root=openvas&view=markup Particle Wiki Index.PHP SQL Injection Vulnerability r9137 100840 gb_zen_cart_43628.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_zen_cart_43628.nasl?root=openvas&view=markup Zen Cart Multiple Input Validation Vulnerabilities r9137 100834 gb_novell_edirectory_43662.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_novell_edirectory_43662.nasl?root=openvas&view=markup Novell eDirectory Server Malformed Index Denial Of Service Vulnerability r9137 100836 gb_particle_wiki_detect.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_particle_wiki_detect.nasl?root=openvas&view=markup Particle Wiki Detection r9137 100838 gb_ecms_detect.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_ecms_detect.nasl?root=openvas&view=markup Evaria ECMS Detection r9137 100835 gb_novell_imanager_43635.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_novell_imanager_43635.nasl?root=openvas&view=markup Novell iManager 'getMultiPartParameters()' Arbitrary File Upload Vulnerability r9137 100839 gb_ecms_43640.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_ecms_43640.nasl?root=openvas&view=markup Evaria ECMS 'Poll.php' Local File Disclosure Vulnerability r9142 831189 gb_mandriva_MDVSA_2010_192.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mandriva_MDVSA_2010_192.nasl?root=openvas&view=markup Mandriva Update for apr-util MDVSA-2010:192 (apr-util) r9142 831190 gb_mandriva_MDVSA_2010_193.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mandriva_MDVSA_2010_193.nasl?root=openvas&view=markup Mandriva Update for qt-creator MDVSA-2010:193 (qt-creator) r9142 831184 gb_mandriva_MDVSA_2010_194.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mandriva_MDVSA_2010_194.nasl?root=openvas&view=markup Mandriva Update for git MDVSA-2010:194 (git) r9142 831185 gb_mandriva_MDVA_2010_202.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mandriva_MDVA_2010_202.nasl?root=openvas&view=markup Mandriva Update for mdkonline MDVA-2010:202 (mdkonline) r9142 831188 gb_mandriva_MDVA_2010_203.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mandriva_MDVA_2010_203.nasl?root=openvas&view=markup Mandriva Update for freeradius MDVA-2010:203 (freeradius) r9142 831186 gb_mandriva_MDVA_2010_204.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mandriva_MDVA_2010_204.nasl?root=openvas&view=markup Mandriva Update for gnupg2 MDVA-2010:204 (gnupg2) r9142 831187 gb_mandriva_MDVSA_2010_191.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mandriva_MDVSA_2010_191.nasl?root=openvas&view=markup Mandriva Update for mailman MDVSA-2010:191 (mailman) == Metasploit modules (2) == r10537 http://metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/fileformat/digital_music_pad_pls.rb Digital Music Pad Version 8.2.3.3.4 SEH overflow r10538 http://metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/browser/trendmicro_extsetowner.rb Trend Micro Internet Security Pro 2010 ActiveX extSetOwner() Remote Code Execution == Nessus plugins (1) == 49703 vmware_VMSA-2010-0015.nasl http://nessus.org/plugins/index.php?view=single&id=49703 VMSA-2010-0015 _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- New VA Modules: NSE: 1, OpenVAS: 14, MSF: 2, Nessus: 1 New VA Module Alert Service (Oct 04)